[] NeoSense
E X P L O I T S
title author type platform port cve id
Berk Dusunur NOKIA VitalSuite SPM 2020 - 'UserName' SQL Injection
webapps multiple
VulnSpy OXID eShop 6.3.4 - 'sorting' SQL Injection
webapps php
China Banking and Insurance Information Technology Management Co. Kuicms PHP EE 2.0 - Persistent Cross-Site Scripting
webapps php
Matthew Aberegg osTicket 1.14.1 - 'Saved Search' Persistent Cross-Site Scripting
webapps php
Matthew Aberegg osTicket 1.14.1 - 'Ticket Queue' Persistent Cross-Site Scripting
webapps php
Matthew Aberegg LimeSurvey 4.1.11 - 'Permission Roles' Persistent Cross-Site Scripting
webapps php
that faceless coder Online Marriage Registration System 1.0 - Persistent Cross-Site Scripting
webapps php
Austin Martin WordPress Plugin Drag and Drop File Upload Contact Form 1.3.3.2 - Remote Code Execution
webapps php
Photubias Pi-hole 4.4.0 - Remote Code Execution (Authenticated)
webapps linux CVE-2020-11108
Mehmet Kelepçe Joomla! Plugin XCloner Backup 3.5.3 - Local File Inclusion (Authenticated)
webapps php
Andy Bowden StreamRipper32 2.6 - Buffer Overflow (PoC)
local windows
Kamaljeet Kumar Open-AudIT 3.3.0 - Reflective Cross-Site Scripting (Authenticated)
webapps php CVE-2020-12261
Musyoka Ian OpenEMR 5.0.1 - Remote Code Execution (1)
webapps php
Metasploit Synology DiskStation Manager - smart.cgi Remote Command Execution (Metasploit)
remote hardware CVE-2017-15889
Metasploit Plesk/myLittleAdmin - ViewState .NET Deserialization (Metasploit)
remote windows CVE-2020-13166
Enesdex Online Discussion Forum Site 1.0 - Remote Code Execution
webapps php
page: 233/3001 [exploits: 48015]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.